Skip to content
MozDef: Mozilla Enterprise Defense Platform
Python JavaScript HTML CSS Shell Makefile Dockerfile
Branch: master
Clone or download

Files

Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
alerts Make ip_source_enrichment's registration a list to be consistent with… May 26, 2020
bot Modify mozdefbot to handle events without _source Dec 23, 2019
cloudy_mozdef Remove unused alerts (#1625) May 8, 2020
config Update install docs for nginx Jan 3, 2020
cron Fixup cron .sh files to align with one .sh file per python script (#1638 May 28, 2020
docker Fixup cron .sh files to align with one .sh file per python script (#1638 May 28, 2020
docs Fixup cron .sh files to align with one .sh file per python script (#1638 May 28, 2020
loginput Update MPL license to https Aug 1, 2019
meteor
mozdef_util Mozdef utilv3 0 6 (#1619) Apr 29, 2020
mq replace the details.response key with details.userresponse to satisfy… May 27, 2020
rest Feature triage bot v02 (#1576) Apr 14, 2020
scripts Fixup cron .sh files to align with one .sh file per python script (#1638 May 28, 2020
static removing path to watchlist, removing watchlist from static, adding pr… Oct 30, 2018
systemdfiles Update meteor files for manual installation docs Jan 3, 2020
tests replace the details.response key with details.userresponse to satisfy… May 27, 2020
.flake8 Exclude mozdef_util build directory from flake8 checks Apr 9, 2019
.gitignore Merge branch 'master' into geomodel-v-0-1 Aug 2, 2019
.travis.yml Remove deprecated sudo from travisci build Mar 25, 2020
CHANGELOG.md Create v3.1.2 release and update changelog Oct 4, 2019
CODE_OF_CONDUCT.md Add Mozilla Code of Conduct file Mar 28, 2019
CONTRIBUTING.md Modifying urls to point to mozilla from jeffbryner, slight readabilit… Jun 15, 2017
LICENSE Update MPL license to https Aug 1, 2019
Makefile Remove unnecessary commented line and clean call Mar 31, 2020
README.md Create v3.1.2 release and update changelog Oct 4, 2019
requirements.txt Mozdef utilv3 0 6 (#1619) Apr 29, 2020

README.md

Build Status Documentation Status

MozDef: LOGO

Documentation:

https://mozdef.readthedocs.org/en/latest/

Give MozDef a Try in AWS:

The following button will launch the Mozilla Enterprise Defense Platform in your AWS account.

Warning: Pressing the "Launch Stack" button and following through with the deployment will incur charges to your AWS account.

Launch MozDef

Why?

The inspiration for MozDef comes from the large arsenal of tools available to attackers. Suites like metasploit, armitage, lair, dradis and others are readily available to help attackers coordinate, share intelligence and finely tune their attacks in real time. Defenders are usually limited to wikis, ticketing systems and manual tracking databases attached to the end of a Security Information Event Management (SIEM) system.

The Mozilla Enterprise Defense Platform (MozDef) seeks to automate the security incident handling process and facilitate the real-time activities of incident handlers.

Goals:

  • Provide a platform for use by defenders to rapidly discover and respond to security incidents
  • Automate interfaces to other systems like bunker, cymon, mig
  • Provide metrics for security events and incidents
  • Facilitate real-time collaboration amongst incident handlers
  • Facilitate repeatable, predictable processes for incident handling
  • Go beyond traditional SIEM systems in automating incident handling, information sharing, workflow, metrics and response automation

Status:

MozDef is in production at Mozilla where we are using it to process over 300 million events per day.

Survey & Contacting us

If you're interested in running MozDef and would like to give us feedback, please take the following surveys:

These survey also include a contact form where you can reach us if you would like to (it's optional)

Note: These surveys will be open for a limited amount of time, in order to ensure that we look at your feedback in a timely fashion. Thanks for your understanding!

You can’t perform that action at this time.